Germany Country Report - Enisa - Europa
Germany Country Report - Enisa - Europa
Germany Country Report - Enisa - Europa
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
<strong>Germany</strong> <strong>Country</strong> <strong>Report</strong><br />
The German Federal Network Agency for Gas, Telecommunications, Post, and Railway –<br />
Bundesnetzagentur für Elektrizität, Gas, Telekommunikation, Post und Eisenbahnen (BNetzA) is<br />
the competent authority on this topic. BNetzA supervises the certification service providers and in<br />
addition to its supervisory function is also an accreditation authority, recognises verification and<br />
confirmation agencies such as BSI.<br />
BNetzA is also the root instance for accredited service providers.<br />
eIdentification/eAuthentication 8<br />
The BMI i.e. the BSI Bundesamt für Sicherheit in der Informationstechnik and the BMG-Bund<br />
Bundesministerium für Gesundheit - The Federal Ministry of Health are the relevant authorities in<br />
<strong>Germany</strong> regarding the e-identity cards eID, ePass and eGK.<br />
BMI – BSI Bundesamt für Sicherheit in der Informationstechnik<br />
eID � Electronic identity card<br />
� Introduced in November 1, 2010, equipped with a Radio Frequency Chip (RF chip)<br />
that includes personal data and a biometric photo of the eID owner<br />
� Fingerprints are not mandatory but could be included if the eID owner agrees<br />
� No central data storage of the eID information as covered by the act § 16<br />
Datenschutzrechtliche Bestimmungen 9 – data protection regulation even those<br />
were requested from the eID owner<br />
� The eID could be used for eID applications which are provided by eGovernment<br />
and eBusiness 10<br />
ePass<br />
� Private service companies could request to read in specific information on the eID<br />
(e.g. online shopping). The authorization of the data is reviewed and is granted for<br />
a limited period of time 11<br />
� The authorization is given through authentication certificates which are requested<br />
during the terminal authentication (TA) 12 . The eID owner must enter the eID pin<br />
code before the encrypted data flows<br />
� The owner of the eID could request a signature function, which allows a digital<br />
signature. This signature has an official character and is implemented in the law of<br />
electronic signatures 13<br />
� Electronic passport 14<br />
� Introduced in November 1, 2005, equipped with a Radio Frequency Chip (RF chip)<br />
that includes personal data and a biometric photo of the ePass owner<br />
� Since November 1, 2007, the RF chip include mandatory and in line with the EC<br />
regulation nr. 2252/2004 15 fingerprints of the ePass owner 16<br />
7<br />
See the document at: http://bundesrecht.juris.de/sigg_2001/index.html<br />
8<br />
Source: Study on eID Interoperability for PEGS: http://ec.europa.eu/idabc/servlets/Docb482.pdf?id=32522<br />
9<br />
See:<br />
http://www.bmi.bund.de/SharedDocs/Downloads/DE/Themen/Sicherheit/PaesseAusweise/PassVwV.pdf?__blob<br />
=publicationFile<br />
10<br />
See:<br />
http://epractice.eu/en/factsheets/factsheet_all_chapters?filter=1&content_type=efactsheet_chapter&Countries<br />
=16&domain=10020&Factsheets_Topic=All&search=&op=Apply&form_build_id=formbcfdd2855590fef21d1a4f9043b9c965<br />
11<br />
See:<br />
https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/ElekAusweise/Pressemappe_nPA/Innovationen_eID-<br />
Architektur_Deutschland.pdf?__blob=publicationFile<br />
12<br />
See:<br />
https://www.bsi.bund.de/cln_174/ContentBSI/Themen/Elekausweise/Sicherheitsmechanismen/TA/sicherheits<br />
mechanismenTA.html<br />
13<br />
See: http://www.gesetze-im-internet.de/sigg_2001/index.html<br />
14<br />
See: http://www.bamf.de/cln_118/DE/Infothek/FragenAntworten/eAufenthaltstitel/eAufenthaltstitel.html<br />
15<br />
See: http://eur-lex.europa.eu/LexUriServ/LexUriServ.do?uri=OJ:L:2004:385:0001:0006:EN:PDF<br />
9